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REMARKS 

Reconsideration of this Application is respectfully requested. In response to the Office 
Action mailed February 25, 2005, Applicant has amended claim 25. Claims 1-27 are pending. 

Based on the above Amendment and the following Remarks, Applicant respectfully requests 
that the Examiner reconsider all outstanding objections and rejections and that they be withdrawn. 

Request for Acknowledgement of Figures 

In the Preliminary Amendment filed September 24, 2002, Applicant submitted new figures 
1-6 replacing the figures as filed. Applicant respectfully requests that the Examiner consider these 
figures. 

Rejections under 35 U.S.C. § 103 

On pages 2-4, the Action rejects claims 1-9 and 15-19 under 35 U.S.C. § 103(a) as being 
unpatentable over Apphed Cryptography, Second Edition to Schneier (hereinafter "Schneier") in 
view of U.S. Patent No. 6,175,924 to Amold (hereinafter "Arnold"). Applicant notes that the 
Action does not apply a rejection to claim 19 in this section, and instead appHes a rejection in view 
of different references on page 6 of the Action (see section (C) below). Applicant believes listing 
claim 19 as being rejected over Scheier and Amold was an inadvertent error. 

Apphcant respectfully traverses the rejection of claims 1-9 and 15-18 as the Action fails to 
establish a prima facie case of obviousness. In order to establish a prima facie case of obviousness, 
three basic criteria must be met. First, there must be some suggestion or motivation, either in the 
references themselves or in the knowledge generally available to one of ordinary skill in the art, to 
modify the reference or to combine reference teachings. Second, there must be a reasonable 
expectation of success. Finally, the prior art reference (or references when combined) must teach or 
suggest all the claim limitations. M.P.E.P. § 2143. 

(A) For at least the following three reasons, the Action does not establish a prima facie case 
of obviousness to reject claim 1 in view of the combined teachings of Schneier and Amold. 
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Claim 1 recites: "A method for transferring a first electronic key between a key provider 
system and a second other system via an information network comprising the steps of: a) encrypting 
the first electronic key using a first encryption key of the key provider; b) providing within the 
second other system a first secure module having a second encryption key within a read-only 
memory circuit thereof and provided with the first secure module, the second encryption key 
accessible only by program code being executed on a processor internal to the first secure module , 
and wherein the second encryption key is other than modifiable and other than accessible outside of 
the module ; c) transferring the encrypted first electronic key fi'om the key provider system to the 
second other system via the information network; d) providing the encrypted first electronic key to 
the processor intemal to the first secure module of the second other system; and, e) executing 
program code on the processor intemal to the first secure module to decrypt the encrypted first 
electronic key using the second encryption key stored within the read-only memory circuit of the 
first secure module and to store the decrypted first electronic key internally within a secure key 
memory location of the first secure module" (emphasis added). 

First, Schneier and Arnold do not teach or suggest "providing within the second other 
system a first secure module having a second encryption key within a read-only memory circuit ," as 
recited in claim 1. As correctly admitted in the Action on page 3, Schneier does not teach or 
suggest a "ROM," and therefore does not teach or suggest "a second encryption key within a read- 
only memory circuit ." Likewise, Arnold does not teach or suggest "a first secure module having a 
second encryption key within a read-only memory circuit," as recited in claim 1 . Listead, in FIG. 2, 
Arnold discloses a private key Kpr stored in a secure persistent storage that is attached to a ROM 
55, but does not disclose the private key Kpr being stored within the ROM 55 (see Amold, FIG. 2, 
col. 4, lines 50-52, 58-59, col. 5, lines 31-33). Thus, Schneier and Amold do not teach or suggest 
"providing within the second other system a first secure module having a second encryption key 
within a read-only memory circuit," as recited in claim 1. 

Second, Schneier and Amold do not teach or suggest "a secure encryption key accessible 
only by program code being executed on a processor intemal to the first secure module," as recited 
in claim 1 . As admitted in the Action on page 3, Schneier "fails to disclose the encrypting and 
decrypting being performed in a secure module containing a processor." Therefore, Schneier does 
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not teach of suggest "a secure encryption key accessible only by program code being executed on a 
processor internal to the first secure module," as recited in claim 1 . 

Likewise, Arnold does not teach of suggest "a secure encryption key accessible only by 
program code being executed on a processor internal to the first secure module," as recited in claim 
1. On page 3, the Action relies on column 3, lines 48-61 of Arnold for a teaching of "a secure 
module with such features." However, for the following reasons, while Arnold may disclose using 
private key/public key pairs, Arnold does not teach or suggest that either the private key or the 
pubUc key is accessible "only by program code being executed on a processor internal to the first 
secure module." 

Arnold discloses a system for certifying the authenticity of an application program to 
prevent certified applications programs fi'om accessing data that is not their own (see Arnold, 
Abstract). Amold discloses a computer program 35 used to allocate memory segments to 
applications programs so that a memory segment allocated to one application program cannot be 
viewed or allocated by another application program (see Amold, col. 4, lines 25-39). The program 
35 may be employed on a security card 1 1 . The program 35 may be implemented as a special 
purpose apparatus by storing the program's executable instructions in RAM 53, ROM 55, or a 
combination of both and/or loaded into RAM 53 from a hard disk drive (DASD) 27 (see Amold, 
FIG. 1, col. 3, Hnes 47-56). RAM 53 and ROM 55 contain the operating system, and the ROM 55 is 
attached to a persistent memory 107 (see Amold, FIG. 2, col. 4, lines 50-57). The security card 1 1 
includes a cryptographic processing module 57 and a processor 51 (see Amold, FIG. 1, col. 3, lines 
55-61). The persistent storage stores a private key Kpr that is used to encrypt a hash of a unique 
application program name Na and of the application program Pa to determine the digital signature 
DSIG. KpR is the private key of a public/private key pair with public key Kpu (see Amold, col. 5, 
lines 31-38). The public key Kpu is made available at multiple computer systems (see Amold, col. 
5, lines 35-38). The DSIG may be calculated using Rivest Shamir & Adleman (RSA), which is 
known to process public and private keys. 

However, Amold does not teach or suggest that either of the private key or the public key 
are "accessible only by program code being executed on a processor intemal to the first secure 
module." The main idea of Amold is to allocate memory segments to a particular application 
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program, and then protect the memory segments from modification by other appHcation programs 
that are not allocated to that particular application program (see Arnold, col. 4, lines 8-49). 
Nevertheless, the concept of limiting key access only to program code on a processor intemal within 
a secure module is not even discussed in Arnold. Although the private key Kpr of Arnold is stored 
in secure persistent storage (see Arnold, col. 5, 31-34), this does not imply that program code on an 
authorized external processor cannot access the private key Kpr. The secure persistent storage 
prevents unauthorized access of the private key Kpr, and Arnold does not state that program code 
from an authorized processor external to the security card cannot access the private key Kpr. Thus, 
Arnold does not teach or suggest "a secure encryption key accessible only by program code being 
executed on a processor intemal to the first secure module," as recited in claim 1. 

Third, Schneier and Arnold do not teach or suggest ' Vherein the second encryption key is 
other than modifiable and other than accessible outside of the module," as recited in claim 1. As 
correctly admitted on page 3 of the Action, Schneier does not teach or suggest any such feature. 
Likewise, Arnold does not teach or suggest that the private key Kpr or the public key Kpu is other 
than modifiable and other than accessible outside of the security card 1 1 . Although the private key 
KpR is stored in secure persistent storage, the secure persistent storage is to prevent unauthorized 
access. Arnold does not teach that external processors cannot be authorized to modify or access the 
private key Kpr in the secure persistent storage. Likewise, the public key Kpu of Arnold is "made 
available at every computer system where the authority expects programs certified with Kpr to be 
used" (see Arnold, col. 5, lines 35-38). Thus, the public key Kpu is modifiable and accessible 
outside of the security card 11. Therefore, Arnold does not teach or suggest "wherein the second 
encryption key is other than modifiable and other than accessible outside of the module," as recited 
in claim 1 . 

Accordingly, the Action does not establish a prima facie case of obviousness for using the 
combined teachings Schneier and Arnold to reject claim 1 as these references do not teach or 
suggest all of the claim features. Applicant respectfully requests that the rejection be withdrawn. 

Therefore, claim 1 is in condition for allowance and allowance thereof is respectfiiUy 
requested. 



::ODMA\PCDOCS\DC2DOCS1\660293\1 



11 



Applicant: Bruno COUILLARD 
Appln. No. 09/919,960 



Claims 2-9, which depend from claim 1, are also in condition for allowance due to their 
dependence on an allowable claim. 

Claim 15 is in condition for allowance for reasons analogous to those given for claim 1. 
More specifically, the combined teachings of Schneier and Arnold do not teach or suggest "the at 
least a first encryption key being other than accessible by any code other than the program code and 
being other than modifiable thereby," as recited in claim 15. Therefore, claim 15 is allowable over 
the applied references and allowance thereof is respectfully requested. 

Claims 16-18, which depend from claim 15, are also in condition for allowance due to their 
dependence on an allowable claim. 

(B) On pages 4-6, the Action rejects claims 10-14 and 21-24 under 35 U.S.C. § 103(a) as 
being unpatentable over Schneier and Arnold, in further view of U.S. Patent No. 5,680,458 to 
Spelman et al. (hereinafter "Spelman"). 

Claim 10 is in condition for allowance for reasons analogous to those given for claim 1. 
Specifically, Scheier, Arnold, and Spelman do not teach or suggest "the second and third encryption 
keys accessible only by program code being executed on a processor internal to the first secure 
module," and "wherein the second and third encryption keys are other than accessible outside of the 
module," as recited in claim 10. Spelman is not relied upon for a teaching of these features, and in 
fact, does not teach or suggest any such features. Therefore, claim 10 is allowable over the appHed 
references and allowance thereof is respectfully requested. 

Claims 11-14, which depend from claim 10, are also in condition for allowance due to their 
dependence on an allowable claim. 

Claim 21 is in condition for allowance for reasons analogous to those given for claim 1. 
Additionally, Amold, and Spelman do not teach or suggest "decrypting the encrypted third 
encryption key using one of the first and second encryption keys and for storing the decrypted third 
encryption key approximately within the same memory location of the other one of the first and 
second encryption keys," and "the first and second encryption keys being other than accessible by 
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any code other than the program code and being other than modifiable absent erasing thereof by any 
code other than the program code." Spelman is not relied upon for a teaching of these features, and 
in fact, does not teach or suggest any such features. Therefore, claim 21 is allowable over the 
applied references and allowance thereof is respectfully requested. 

Claims 22-24, which depend from claim 21, are also in condition for allowance due to their 
dependence on an allowable claim. 

(C) On page 6, the Action rejects claim 19 under 35 U.S.C. § 103(a) as being unpatentable 
over Schneier and Amold, in further view of U.S. Patent No. 5,559,889 to Easter et al. (hereinafter 
"Easter"). 

Claim 19 depends from allowable claim 15, and is therefore in condition for allowance. 

(D) On pages 6-7, the Action rejects claim 20 under 35 U.S.C. § 103(a) as being 
unpatentable over Schneier, Amold, and Easter, in further view of U.S. Patent No. 5,249,277 to 
Bergum et al. (hereinafter "Bergum"). 

Claim 20 depends from allowable claim 15, and is therefore in condition for allowance. 

(E) On pages 7-8, the Action rejects claim 25 under 35 U.S.C. § 103(a) as being 
unpatentable over Schneier, Amold, and Spellman, in further view of U.S. Patent No. 4,386,234 to 
Ehrsam et al. (hereinafter "Ehrsam"). 

Claim 25 depends from allowable claim 21, and is therefore in condition for allowance. 

(F) On pages 8-9, the Action rejects claim 26 under 35 U.S.C. § 103(a) as being 
unpatentable over Schneier, Amold, Spellman, and Ehrsam, in further view of Easter. 

Claim 26 depends from allowable claim 21, and is therefore in condition for allowance. 

(G) On page 9, the Action rejects claim 27 under 35 U.S.C. § 103(a) as being unpatentable 
over Schneier, Amold, and Easter, in further view of Bergum. 

Claim 27 depends from allowable claim 21, and is therefore in condition for allowance. 
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Therefore, claims 1-27 are in condition for allowance and allowance thereof is respectfully 



All of the stated grounds of objection and rejection have been properly traversed, 
accommodated, or rendered moot. Applicant therefore respectfully requests that the Examiner 
reconsider all presently outstanding objections and rejections and that they be withdrawn. 
Applicant believes that a full and complete reply has been made to the outstanding Office Action 
and, as such, the present application is in condition for allowance. If the Examiner believes, for any 
reason, that personal communication will expedite prosecution of this application, the Examiner is 
hereby invited to telephone the undersigned at the number provided. 

Prompt and favorable consideration of this Amendment is respectfully requested. 

Respectfully submitted. 



requested. 



Conclusion 





Edward W. Yee 
Registration No. 47,294 
VENABLE, LLP 
P.O. Box 34385 
Washington, D.C. 20043-9998 
Telephone: (202) 344-4000 
Telefax: (202)344-8300 
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